-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi List,
This may be a little of an unorthodox question as it somewhat defeats
the purpose of encryption, but I'm currently attempting to put together
a high-interactive iPhone honeypot project as part of my thesis for a
masters course in security and forensics. The project blog is located at
http://iphonehoneypot.wordpress.com which details the project's
objectives and current status.
As it stands, I have one last element to implement and this is to
capture keystrokes from an established SSH session. I have looked at
various options; kernel modules, writing my own ssh service in python
using the twisted framework etc but I'd like to explore the possibility
of modifying openssh to record keystrokes to ensure authenticity. Can
anyone advise? Is this even possible? Are there other alternatives which
I haven't considered? i.e. can I generate a static key which I could use
to decrypt the captured traffic later?
Many Thanks,
A
- --
Alan Neville,
Postgraduate Education Officer,
DCU Students' Union 2009/2010,
BS.c Computer Applications DCU (Completed)
MS.c Security and Forensics DCU (Attending)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBAgAGBQJMPITVAAoJEJ1FG8f8Uulu+9sH/0csr66PH4UfUc+peBL3eSZj
j0nOvxB8vTwcBR57G7TjmYMfC29czkIIZKvcMGJ1JjwTg1GlGbVSZxfryUubcuEQ
xUCBBf9DrTlgs/GrPqjXTwwL4CsMr9fjlZtj0ir95s5yf4hDkcXqB7MMWDBaqPdK
z7BZ0vPElU7jPOia1zIyRdfT/9Ooq53sD8sukWrABdgrCvzwb9JalV9mNEj2st+Y
hTRBSURLHY/lwNgoqwfTJIH4YpeGC9D6qpgBE6HOrKoTFDUtHsWbBU7KUvoZ/Izn
GAvutTdEMd+0qF2yK97krwxDW/7JW7/83aKGZT4sScYzAxzZWN97yhKrZn+kVrc=rmVf
-----END PGP SIGNATURE-----